Vulnerabilities > CVE-2002-0558 - Directory Traversal vulnerability in TYPSoft FTP Server

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
network
low complexity
typsoft
nessus
NVD
Published: 2002-07-03
Updated: 2008-09-05

Summary

Directory traversal vulnerability in TYPSoft FTP server 0.97.1 and earlier allows a remote authenticated user (possibly anonymous) to list arbitrary directories via a .. in a LIST (ls) command ending in wildcard *.* characters.

Vulnerable Configurations

Part Description Count
Application
Typsoft
5

Nessus

NASL familyFTP
NASL idTYPSOFTFTP_DIR_TRAVERSAL.NASL
descriptionUsing
last seen2020-06-01
modified2020-06-02
plugin id14706
published2004-09-13
reporterThis script is Copyright (C) 2004-2018 Tenable Network Security, Inc.
sourcehttps://www.tenable.com/plugins/nessus/14706
titleTYPSoft FTP Server LIST Command Traversal Arbitrary Directory Listing

References